Subject: PR/32572 CVS commit: [netbsd-3] src/lib/libc/rpc
To: None <lib-bug-people@netbsd.org, gnats-admin@netbsd.org,>
From: Julian Coleman <jdc@netbsd.org>
List: netbsd-bugs
Date: 01/26/2006 21:35:02
The following reply was made to PR lib/32572; it has been noted by GNATS.
From: Julian Coleman <jdc@netbsd.org>
To: gnats-bugs@netbsd.org
Cc:
Subject: PR/32572 CVS commit: [netbsd-3] src/lib/libc/rpc
Date: Thu, 26 Jan 2006 21:30:28 +0000 (UTC)
Module Name: src
Committed By: jdc
Date: Thu Jan 26 21:30:28 UTC 2006
Modified Files:
src/lib/libc/rpc [netbsd-3]: xdr_rec.c
Log Message:
Pull up revision 1.26 (requested by christos in ticket #1128).
PR/32572: John Kohl: xdr_rec.c missing a bugfix for an improper security check
The correct way to check for a zero record length is to check for it
without the LAST_FRAG marker in it, since it's legal to send a LAST_FRAG
marker with 0 bytes of data.
To generate a diff of this commit:
cvs rdiff -r1.24.6.1 -r1.24.6.2 src/lib/libc/rpc/xdr_rec.c
Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.